@dcarr said:
If I found out my account was hacked and someone was committing a fraud with it, I would immediately create a new account for myself (alternate ID) and post in the BST thread (and elsewhere) that the offerings were bogus.
Unless it has changed, PCGS takes a couple of days or more to verify your email and give you posting privileges.
.
I haven't created an account here in more than 20 years, so I suppose that is the case (that a new account can't post for a couple days). If that is the case, then as others here have mentioned I would contact someone I know who posts here that has not been hacked, and have them notify the forum of the hacking.
"Anyone attempting to sell coins or PMs or anywhere else under my name is trying to scam you. There is a post here trying to sell gold buffalos or eagles for $2880....there is an identical post under my name offering the same coins on the NGC Marketplace forum". So three sites, same scam. They need to communicate with law enforcement, get the ISPs and have the authorities work on convicting the scammer.
@logger7 said:
"Anyone attempting to sell coins or PMs or anywhere else under my name is trying to scam you. There is a post here trying to sell gold buffalos or eagles for $2880....there is an identical post under my name offering the same coins on the NGC Marketplace forum". So three sites, same scam. They need to communicate with law enforcement, get the ISPs and have the authorities work on convicting the scammer.
And if he's in Eastern Europe? Or he's using a public computer? These perps are rarely caught because they are usually smart enough to hide their tracks.
@logger7 said:
"Anyone attempting to sell coins or PMs or anywhere else under my name is trying to scam you. There is a post here trying to sell gold buffalos or eagles for $2880....there is an identical post under my name offering the same coins on the NGC Marketplace forum". So three sites, same scam. They need to communicate with law enforcement, get the ISPs and have the authorities work on convicting the scammer.
And if he's in Eastern Europe? Or he's using a public computer? These perks are rarely caught because they are usually smart enough to hide their tracks.
Apparently the perpetrator is operating in Canada. The interdictions of these perpetrators is a large part of modern forensic science.
@logger7 said:
"Anyone attempting to sell coins or PMs or anywhere else under my name is trying to scam you. There is a post here trying to sell gold buffalos or eagles for $2880....there is an identical post under my name offering the same coins on the NGC Marketplace forum". So three sites, same scam. They need to communicate with law enforcement, get the ISPs and have the authorities work on convicting the scammer.
And if he's in Eastern Europe? Or he's using a public computer? These perks are rarely caught because they are usually smart enough to hide their tracks.
Apparently the perpetrator is operating in Canada. The interdictions of these perpetrators is a large part of modern forensic science.
I must have missed that. How do we know they are in Canada? Or is Canada just another step in a long path that leads????
I’ve been in contact with @BAJJERFAN. By the time he became aware of the issue, he was already unable to post here.
Once he became aware of the issue he started making efforts to get the information relayed to the mod here and on two other forums.
Mark Feld* of Heritage Auctions*Unless otherwise noted, my posts here represent my personal opinions.
Email hacks can be quite lucrative. This one, local to me, netted the scammer over a half a million dollars last fall. Crazy, hope you guys who lost $$ are made whole at some time, in some way.
@Torey said:
Sorry to those who got taken. I regret not waving the red flag when I first read the BST post. Looks like they have now banned @bajjerfan?
this would be a precaution that would prevent anyone from logging in, good guys or bad guys, until this is fixed
if we weren't mostly geezers, i'd say this place, and the planet, needs a "smart" new password check that prevents the use of a single dictionary word or part of user name in the password
We're working on getting this resolved. Thank you all for bringing this to our attention.
Can your IT guys get some IP addresses from the email used to hack it and when/where they were logged in? Several of us lost a good bit of money and want to try to track as far as we can go.
@ Elite CNC Routing & Woodworks on Facebook. Check out my work. Too many positive BST transactions with too many members to list.
I know I am late to this thread, but thought that a few points might be worth repeating or stating.
The first is you shouldn't use simple passwords and the next, along a similar vein, is don't use the same password, or very similar derivatives, on multiple platforms. The use of identical or similar passwords on multiple platforms increases the exposure to hacked accounts.
Also, if the funds were sent via crypto then they are gone. There is no bank account tracing and no physical location tracing. They are gone and they might be significant funds to the folks who lost them, but local law enforcement has plenty of other things to do that are a higher priority than tracking crypto payments for precious metals. I'm sorry that that reads cold, but there is only so much law enforcement and there is far, far more white collar crime than resources.
Lastly, if you get hacked here or somewhere else, you don't necessarily need to already have contact information for other folks on the forum. Many of us use signature lines and there are many dealers here with their contact information in their signature line, which is publicly accessible. So, if you get hacked, you might reach out to a few dealers or other members here and let them know what happened and what you are doing about it and ask them to start a thread to let others know what is going on.
It sucks, it really does, but this is the reality of the digital age.
@TomB said:
I know I am late to this thread, but thought that a few points might be worth repeating or stating.
The first is you shouldn't use simple passwords and the next, along a similar vein, is don't use the same password, or very similar derivatives, on multiple platforms. The use of identical or similar passwords on multiple platforms increases the exposure to hacked accounts.
Also, if the funds were sent via crypto then they are gone. There is no bank account tracing and no physical location tracing. They are gone and they might be significant funds to the folks who lost them, but local law enforcement has plenty of other things to do that are a higher priority than tracking crypto payments for precious metals. I'm sorry that that reads cold, but there is only so much law enforcement and there is far, far more white collar crime than resources.
Lastly, if you get hacked here or somewhere else, you don't necessarily need to already have contact information for other folks on the forum. Many of us use signature lines and there are many dealers here with their contact information in their signature line, which is publicly accessible. So, if you get hacked, you might reach out to a few dealers or other members here and let them know what happened and what you are doing about it and ask them to start a thread to let others know what is going on.
It sucks, it really does, but this is the reality of the digital age.
Yes, cryptocurrency scams can be traced. While cryptocurrencies offer a degree of anonymity, their transactions are recorded on public blockchains, making them traceable. Cybercriminals often use multiple transfers to obfuscate the trail, but blockchain analysis tools and techniques can still be employed to follow the flow of funds. Law enforcement and forensic experts can use these tools, along with subpoenaing exchanges and working with international partners, to identify perpetrators and recover stolen funds.
Here's a more detailed explanation:
Public Blockchains:
Cryptocurrency transactions are publicly recorded on blockchains, which are essentially distributed ledgers. This means anyone can view the transaction history, including amounts, addresses, and timestamps.
Tracing Tools:
Specialized blockchain analysis tools and techniques can be used to trace the flow of funds, even through multiple transactions. These tools can identify patterns and cluster addresses associated with the same owner.
Identifying Perpetrators:
By tracing transactions, law enforcement and forensic experts can identify the exchanges where the funds were moved and potentially identify the individuals or entities involved in the scam.
Cooperation with Exchanges:
Subpoenas can be issued to cryptocurrency exchanges to obtain information about the individuals or entities associated with specific transactions.
International Cooperation:
In some cases, law enforcement may need to cooperate with international agencies to trace funds that have moved to other jurisdictions, especially those with less stringent regulations.
Challenges:
While tracing is possible, it can be complex and time-consuming, especially if cybercriminals use sophisticated methods to obfuscate the trail.
What to do if you are scammed:
The FBI encourages victims of cryptocurrency scams to report the incident to the Internet Crime Complaint Center (IC3) (.gov). They also advise providing as much detail as possible about the scam, including transaction details, communication methods, and any other relevant information
“PCGS support is having a hard time getting my reset password function to work.
The connection between the scam thread and the "bitcoin" post in the PM forum is pure sheer 99.94% coincidence and nothing else. I was reading on another site where someone asked about how to cash out bitcoin. I'm not sure if they really didn't know. Another poster there advised to buy gold with it so I was curious as to what kind of tracks that might leave if one bought gold from a bullion house that accepts crypto. That's it in a nutshell.
BIG RED FLAG: I ALWAYS TYPE/WRITE MY SCREEN NAME BAJJERFAN IN CAPS! ALWAYS! That should have been a CLUE right there. NEVER as Bajjerfan NEVER”
Mark Feld* of Heritage Auctions*Unless otherwise noted, my posts here represent my personal opinions.
@BAJJERFAN said:
Finally just got back on. Sorry for anyone who was a victim and I'm not really sure how it was done.
I think you explained it yourself on the Russell thread
Prior to the hack I never had an email of any sort from PCGS nor did I click on an email link from anyone else. I hadn't logged into the message boards for months before that. All I remember is that on a Friday I noticed that I was signed out and couldn't sign back in. Even tho I was signed out I could read the boards, but didn't bother doing so so it was a few days before I became aware of it. I thought I may have been banned, but couldn't think of a reason why. Usually your IP gets banned and you can't even access the forums.
Comments
He may not have known before the damage was done.
.
I haven't created an account here in more than 20 years, so I suppose that is the case (that a new account can't post for a couple days). If that is the case, then as others here have mentioned I would contact someone I know who posts here that has not been hacked, and have them notify the forum of the hacking.
.
"Anyone attempting to sell coins or PMs or anywhere else under my name is trying to scam you. There is a post here trying to sell gold buffalos or eagles for $2880....there is an identical post under my name offering the same coins on the NGC Marketplace forum". So three sites, same scam. They need to communicate with law enforcement, get the ISPs and have the authorities work on convicting the scammer.
And if he's in Eastern Europe? Or he's using a public computer? These perps are rarely caught because they are usually smart enough to hide their tracks.
Apparently the perpetrator is operating in Canada. The interdictions of these perpetrators is a large part of modern forensic science.
I must have missed that. How do we know they are in Canada? Or is Canada just another step in a long path that leads????
So on the 19th bajjerfan starts a thread about Bitcoin and a week later his account is hacked for a Bitcoin scam?
I’ve been in contact with @BAJJERFAN. By the time he became aware of the issue, he was already unable to post here.
Once he became aware of the issue he started making efforts to get the information relayed to the mod here and on two other forums.
Mark Feld* of Heritage Auctions*Unless otherwise noted, my posts here represent my personal opinions.
Email hacks can be quite lucrative. This one, local to me, netted the scammer over a half a million dollars last fall. Crazy, hope you guys who lost $$ are made whole at some time, in some way.
https://cbs2iowa.com/news/local/500000-federal-money-scam
Sorry to those who got taken. I regret not waving the red flag when I first read the BST post. Looks like they have now banned @bajjerfan?
Successful BST transactions- Bfjohnson, Collectorcoins, 1peter223, Shrub68, Byers, Greencopper, Coinlieutenant, Coinhunter4, SurfinxHI, ProfLiz
We're working on getting this resolved. Thank you all for bringing this to our attention.
Isa Zavala
PCGS Social Media Coordinator
this would be a precaution that would prevent anyone from logging in, good guys or bad guys, until this is fixed
if we weren't mostly geezers, i'd say this place, and the planet, needs a "smart" new password check that prevents the use of a single dictionary word or part of user name in the password
Can your IT guys get some IP addresses from the email used to hack it and when/where they were logged in? Several of us lost a good bit of money and want to try to track as far as we can go.
Too many positive BST transactions with too many members to list.
I got a few PIs on "Thumbtack" who are good at nailing perpetrators:
W.I.N. DETECTIVE AGENCY
Gryphon Consulting Services
Blackhorse Investigations LLC
Cal State Recovery
Estimates were $59 and up with banking account location services as an option for a couple hundred, guaranteed.
I know I am late to this thread, but thought that a few points might be worth repeating or stating.
The first is you shouldn't use simple passwords and the next, along a similar vein, is don't use the same password, or very similar derivatives, on multiple platforms. The use of identical or similar passwords on multiple platforms increases the exposure to hacked accounts.
Also, if the funds were sent via crypto then they are gone. There is no bank account tracing and no physical location tracing. They are gone and they might be significant funds to the folks who lost them, but local law enforcement has plenty of other things to do that are a higher priority than tracking crypto payments for precious metals. I'm sorry that that reads cold, but there is only so much law enforcement and there is far, far more white collar crime than resources.
Lastly, if you get hacked here or somewhere else, you don't necessarily need to already have contact information for other folks on the forum. Many of us use signature lines and there are many dealers here with their contact information in their signature line, which is publicly accessible. So, if you get hacked, you might reach out to a few dealers or other members here and let them know what happened and what you are doing about it and ask them to start a thread to let others know what is going on.
It sucks, it really does, but this is the reality of the digital age.
In honor of the memory of Cpl. Michael E. Thompson
Yes, cryptocurrency scams can be traced. While cryptocurrencies offer a degree of anonymity, their transactions are recorded on public blockchains, making them traceable. Cybercriminals often use multiple transfers to obfuscate the trail, but blockchain analysis tools and techniques can still be employed to follow the flow of funds. Law enforcement and forensic experts can use these tools, along with subpoenaing exchanges and working with international partners, to identify perpetrators and recover stolen funds.
Here's a more detailed explanation:
Public Blockchains:
Cryptocurrency transactions are publicly recorded on blockchains, which are essentially distributed ledgers. This means anyone can view the transaction history, including amounts, addresses, and timestamps.
Tracing Tools:
Specialized blockchain analysis tools and techniques can be used to trace the flow of funds, even through multiple transactions. These tools can identify patterns and cluster addresses associated with the same owner.
Identifying Perpetrators:
By tracing transactions, law enforcement and forensic experts can identify the exchanges where the funds were moved and potentially identify the individuals or entities involved in the scam.
Cooperation with Exchanges:
Subpoenas can be issued to cryptocurrency exchanges to obtain information about the individuals or entities associated with specific transactions.
International Cooperation:
In some cases, law enforcement may need to cooperate with international agencies to trace funds that have moved to other jurisdictions, especially those with less stringent regulations.
Challenges:
While tracing is possible, it can be complex and time-consuming, especially if cybercriminals use sophisticated methods to obfuscate the trail.
What to do if you are scammed:
The FBI encourages victims of cryptocurrency scams to report the incident to the Internet Crime Complaint Center (IC3) (.gov). They also advise providing as much detail as possible about the scam, including transaction details, communication methods, and any other relevant information
I was asked by @BAJJERFAN to post this:
“PCGS support is having a hard time getting my reset password function to work.
The connection between the scam thread and the "bitcoin" post in the PM forum is pure sheer 99.94% coincidence and nothing else. I was reading on another site where someone asked about how to cash out bitcoin. I'm not sure if they really didn't know. Another poster there advised to buy gold with it so I was curious as to what kind of tracks that might leave if one bought gold from a bullion house that accepts crypto. That's it in a nutshell.
BIG RED FLAG: I ALWAYS TYPE/WRITE MY SCREEN NAME BAJJERFAN IN CAPS! ALWAYS! That should have been a CLUE right there. NEVER as Bajjerfan NEVER”
Mark Feld* of Heritage Auctions*Unless otherwise noted, my posts here represent my personal opinions.
Finally just got back on. Sorry for anyone who was a victim and I'm not really sure how it was done.
I think you explained it yourself on the Russell thread
Prior to the hack I never had an email of any sort from PCGS nor did I click on an email link from anyone else. I hadn't logged into the message boards for months before that. All I remember is that on a Friday I noticed that I was signed out and couldn't sign back in. Even tho I was signed out I could read the boards, but didn't bother doing so so it was a few days before I became aware of it. I thought I may have been banned, but couldn't think of a reason why. Usually your IP gets banned and you can't even access the forums.